Re: FreeBSD all versions FireWire IOCTL kernel integer overflow information disclousure

Subject: Re: FreeBSD all versions FireWire IOCTL kernel integer overflow information disclousure
From: Lucas Holt <luke@xxxxxxxxxxxxxxxx>
Date: Thu, 16 Nov 2006 08:38:35 -0500
Cc: full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx, exploits@xxxxxxxxxxxxxxxxxxxxxx, list@xxxxxxxxxxxxxx
In-reply-to: <20061115145257.50EB18BCE7@xxxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20061115145257.50EB18BCE7@xxxxxxxxxxxxxxxxxxx>
User-agent: Thunderbird 1.5.0.8 (Windows/20061025)

This vulnerability also affects MidnightBSD. 0.1-CURRENT was patchedthis morning.


Lucas Holt
http://www.midnightbsd.org/

References:
- FreeBSD all versions FireWire IOCTL kernel integer overflow information disclousure
  - From: Rodrigo Rubira Branco (BSDaemon)